diff --git a/cli/Dockerfile b/cli/Dockerfile
index ecbbb456adc6d1c50adf06a41d33b9f37ff3e6a2..0110120fd38ae7ae28460ce9ae4ae31db54c787a 100644
--- a/cli/Dockerfile
+++ b/cli/Dockerfile
@@ -28,7 +28,7 @@ RUN curl -L "https://get.helm.sh/helm-${HELM_VERSION}-linux-amd64.tar.gz" | tar
FROM registry.fedoraproject.org/fedora:35 as flux
# renovate: datasource=github-releases depName=fluxcd/flux2
-ARG FLUX_VERSION=v0.29.5
+ARG FLUX_VERSION=v0.30.2
ENV FLUX_VERSION=${FLUX_VERSION}
RUN curl -L https://github.com/fluxcd/flux2/releases/download/${FLUX_VERSION}/flux_$(sed 's/^v//g' <<<${FLUX_VERSION})_linux_amd64.tar.gz | tar xvzf - flux \
diff --git a/clusters/k8s01/flux-system/gotk-components.yaml b/clusters/k8s01/flux-system/gotk-components.yaml
index 9b5e10feed6f63e8fee610b37a486619f3b2bc62..e7e12086cbf5880b82d31a026f0b0906ef98d60e 100644
--- a/clusters/k8s01/flux-system/gotk-components.yaml
+++ b/clusters/k8s01/flux-system/gotk-components.yaml
@@ -1,6 +1,6 @@
---
# This manifest was generated by flux. DO NOT EDIT.
-# Flux Version: v0.29.5
+# Flux Version: v0.30.2
# Components: source-controller,kustomize-controller,helm-controller,notification-controller
apiVersion: v1
kind: Namespace
@@ -8,7 +8,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
pod-security.kubernetes.io/warn: restricted
pod-security.kubernetes.io/warn-version: latest
name: flux-system
@@ -22,7 +22,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: alerts.notification.toolkit.fluxcd.io
spec:
group: notification.toolkit.fluxcd.io
@@ -243,7 +243,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: buckets.source.toolkit.fluxcd.io
spec:
group: source.toolkit.fluxcd.io
@@ -753,7 +753,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: gitrepositories.source.toolkit.fluxcd.io
spec:
group: source.toolkit.fluxcd.io
@@ -897,8 +897,8 @@ spec:
secretRef:
description: The secret name containing the Git credentials. For HTTPS
repositories the secret must contain username and password fields.
- For SSH repositories the secret must contain identity, identity.pub
- and known_hosts fields.
+ For SSH repositories the secret must contain identity and known_hosts
+ fields.
properties:
name:
description: Name of the referent.
@@ -1241,8 +1241,7 @@ spec:
description: SecretRef specifies the Secret containing authentication
credentials for the GitRepository. For HTTPS repositories the Secret
must contain 'username' and 'password' fields. For SSH repositories
- the Secret must contain 'identity', 'identity.pub' and 'known_hosts'
- fields.
+ the Secret must contain 'identity' and 'known_hosts' fields.
properties:
name:
description: Name of the referent.
@@ -1480,7 +1479,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: helmcharts.source.toolkit.fluxcd.io
spec:
group: source.toolkit.fluxcd.io
@@ -2046,7 +2045,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: helmreleases.helm.toolkit.fluxcd.io
spec:
group: helm.toolkit.fluxcd.io
@@ -2286,16 +2285,20 @@ spec:
properties:
secretRef:
description: SecretRef holds the name to a secret that contains
- a 'value' key with the kubeconfig file as the value. It must
- be in the same namespace as the HelmRelease. It is recommended
- that the kubeconfig is self-contained, and the secret is regularly
- updated if credentials such as a cloud-access-token expire.
- Cloud specific `cmd-path` auth helpers will not function without
- adding binaries and credentials to the Pod that is responsible
- for reconciling the HelmRelease.
+ a key with the kubeconfig file as the value. If no key is specified
+ the key will default to 'value'. The secret must be in the same
+ namespace as the HelmRelease. It is recommended that the kubeconfig
+ is self-contained, and the secret is regularly updated if credentials
+ such as a cloud-access-token expire. Cloud specific `cmd-path`
+ auth helpers will not function without adding binaries and credentials
+ to the Pod that is responsible for reconciling the HelmRelease.
properties:
+ key:
+ description: Key in the Secret, when not specified an implementation-specific
+ default key is used.
+ type: string
name:
- description: Name of the referent.
+ description: Name of the Secret.
type: string
required:
- name
@@ -2889,7 +2892,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: helmrepositories.source.toolkit.fluxcd.io
spec:
group: source.toolkit.fluxcd.io
@@ -3370,7 +3373,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: kustomizations.kustomize.toolkit.fluxcd.io
spec:
group: kustomize.toolkit.fluxcd.io
@@ -4063,17 +4066,21 @@ spec:
is empty.
properties:
secretRef:
- description: SecretRef holds the name to a secret that contains
- a 'value' key with the kubeconfig file as the value. It must
- be in the same namespace as the Kustomization. It is recommended
- that the kubeconfig is self-contained, and the secret is regularly
- updated if credentials such as a cloud-access-token expire.
- Cloud specific `cmd-path` auth helpers will not function without
- adding binaries and credentials to the Pod that is responsible
- for reconciling the Kustomization.
+ description: SecretRef holds the name of a secret that contains
+ a key with the kubeconfig file as the value. If no key is set,
+ the key will default to 'value'. The secret must be in the same
+ namespace as the Kustomization. It is recommended that the kubeconfig
+ is self-contained, and the secret is regularly updated if credentials
+ such as a cloud-access-token expire. Cloud specific `cmd-path`
+ auth helpers will not function without adding binaries and credentials
+ to the Pod that is responsible for reconciling the Kustomization.
properties:
+ key:
+ description: Key in the Secret, when not specified an implementation-specific
+ default key is used.
+ type: string
name:
- description: Name of the referent.
+ description: Name of the Secret.
type: string
required:
- name
@@ -4488,7 +4495,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: providers.notification.toolkit.fluxcd.io
spec:
group: notification.toolkit.fluxcd.io
@@ -4693,7 +4700,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: receivers.notification.toolkit.fluxcd.io
spec:
group: notification.toolkit.fluxcd.io
@@ -4919,7 +4926,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: helm-controller
namespace: flux-system
---
@@ -4929,7 +4936,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: kustomize-controller
namespace: flux-system
---
@@ -4939,7 +4946,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: notification-controller
namespace: flux-system
---
@@ -4949,7 +4956,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: source-controller
namespace: flux-system
---
@@ -4959,7 +4966,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: crd-controller-flux-system
rules:
- apiGroups:
@@ -4997,6 +5004,8 @@ rules:
resources:
- namespaces
- secrets
+ - configmaps
+ - serviceaccounts
verbs:
- get
- list
@@ -5012,7 +5021,6 @@ rules:
- ""
resources:
- configmaps
- - configmaps/status
verbs:
- get
- list
@@ -5021,6 +5029,14 @@ rules:
- update
- patch
- delete
+- apiGroups:
+ - ""
+ resources:
+ - configmaps/status
+ verbs:
+ - get
+ - update
+ - patch
- apiGroups:
- coordination.k8s.io
resources:
@@ -5040,7 +5056,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: cluster-reconciler-flux-system
roleRef:
apiGroup: rbac.authorization.k8s.io
@@ -5060,7 +5076,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: crd-controller-flux-system
roleRef:
apiGroup: rbac.authorization.k8s.io
@@ -5092,7 +5108,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
control-plane: controller
name: notification-controller
namespace: flux-system
@@ -5112,7 +5128,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
control-plane: controller
name: source-controller
namespace: flux-system
@@ -5132,7 +5148,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
control-plane: controller
name: webhook-receiver
namespace: flux-system
@@ -5152,7 +5168,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
control-plane: controller
name: helm-controller
namespace: flux-system
@@ -5181,7 +5197,7 @@ spec:
valueFrom:
fieldRef:
fieldPath: metadata.namespace
- image: ghcr.io/fluxcd/helm-controller:v0.20.1
+ image: ghcr.io/fluxcd/helm-controller:v0.21.0
imagePullPolicy: IfNotPresent
livenessProbe:
httpGet:
@@ -5234,7 +5250,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
control-plane: controller
name: kustomize-controller
namespace: flux-system
@@ -5263,7 +5279,7 @@ spec:
valueFrom:
fieldRef:
fieldPath: metadata.namespace
- image: ghcr.io/fluxcd/kustomize-controller:v0.24.4
+ image: ghcr.io/fluxcd/kustomize-controller:v0.25.0
imagePullPolicy: IfNotPresent
livenessProbe:
httpGet:
@@ -5316,7 +5332,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
control-plane: controller
name: notification-controller
namespace: flux-system
@@ -5344,7 +5360,7 @@ spec:
valueFrom:
fieldRef:
fieldPath: metadata.namespace
- image: ghcr.io/fluxcd/notification-controller:v0.23.4
+ image: ghcr.io/fluxcd/notification-controller:v0.23.5
imagePullPolicy: IfNotPresent
livenessProbe:
httpGet:
@@ -5403,7 +5419,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
control-plane: controller
name: source-controller
namespace: flux-system
@@ -5436,7 +5452,7 @@ spec:
valueFrom:
fieldRef:
fieldPath: metadata.namespace
- image: ghcr.io/fluxcd/source-controller:v0.24.3
+ image: ghcr.io/fluxcd/source-controller:v0.24.4
imagePullPolicy: IfNotPresent
livenessProbe:
httpGet:
@@ -5496,7 +5512,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: allow-egress
namespace: flux-system
spec:
@@ -5516,7 +5532,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: allow-scraping
namespace: flux-system
spec:
@@ -5536,7 +5552,7 @@ metadata:
labels:
app.kubernetes.io/instance: flux-system
app.kubernetes.io/part-of: flux
- app.kubernetes.io/version: v0.29.5
+ app.kubernetes.io/version: v0.30.2
name: allow-webhooks
namespace: flux-system
spec: